hubot - npm Package Compare versions

Comparing version 9.0.2 to 9.1.0

bin/hubot.js

@@ -9,2 +9,3 @@ 'use strict'
 const Hubot = require('..')
+const create = require('../src/GenHubot.js')
 
@@ -90,10 +91,7 @@ const switches = [
 if (options.create) {
-  console.error("'hubot --create' is deprecated. Use the yeoman generator instead:")
-  console.error('    npm install -g yo generator-hubot')
-  console.error(`    mkdir -p ${options.path}`)
-  console.error(`    cd ${options.path}`)
-  console.error('    yo hubot')
-  console.error('See https://github.com/github/hubot/blob/main/docs/index.md for more details on getting started.')
-  process.exit(1)
+  options.hubotInstallationPath = process.env.HUBOT_INSTALLATION_PATH ?? 'hubot'
+  create(options.path, options)
+  process.exit(0)
 }
+
 if (options.file) {
@@ -100,0 +98,0 @@ options.adapter = options.file.split('/').pop().split('.')[0]

package.json

 {
   "name": "hubot",
-  "version": "9.0.2",
+  "version": "9.1.0",
   "author": "hubot",
@@ -27,3 +27,2 @@ "keywords": [
   "devDependencies": {
-    "semantic-release": "^21.0.1",
     "standard": "^17.1.0"
@@ -41,2 +40,3 @@ },
     "start": "bin/hubot",
+    "gen": "bin/hubot --create myhubot",
     "pretest": "standard",
@@ -43,0 +43,0 @@ "test": "node --test",

README.md

@@ -18,4 +18,14 @@ ![Build Status: MacOS](https://github.com/hubotio/hubot/actions/workflows/nodejs-macos.yml/badge.svg)
 
+# Create your own Hubot instance
+
+```sh
+mkdir myhubot
+cd myhubot
+npx hubot --create myhubot --adapter @hubot-friends/hubot-slack
+```
+
+Review `scripts/example.mjs`. Create more scripts in the `scripts` folder.
+
 ## License
 
 See the [LICENSE](LICENSE.md) file for license rights and limitations (MIT).

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

95046

increased by3.01%

Dev dependency count

1

decreased by-50%

Number of package files

23

increased by4.55%

Lines of code

2439

increased by3.04%

Number of lines in readme file

31

increased by47.62%

Worsened metrics

Number of low supply chain risk alerts

37

increased by8.82%

Number of medium supply chain risk alerts

4

increased by33.33%

No dependency changes